问题
I've been having a pretty fun time trying to get this request to work. I've been doing a <cfhttp method="get"...> request to Facebook for some time without a problem. The request grabs an RSS feed so we can display it on our site. Unfortunately, someone recently noticed it stopped working. The only thing I can think of that could be causing the problem is the URL in my system is http://www.facebook.com..., but is being redirected to secure (https://www.facebook.com...).
So I've tried installing the cert as is posted all over the "internets"...no dice. I've tried installing into ColdFusion, our webserver and the Java installation on which ColdFusion sits.
Is there any way to just tell ColdFusion that I don't care it's a secure request and to just process it anyways? Facebook doesn't care, and I know what I'm doing, so why should ColdFusion block me from doing what I want to do? This isn't the only time I've run into this, but I've usually not needed to make the secure request and done something else instead.
---Edit#1: I know this has to be a secure request. I just would like to know if there is some way to tell ColdFusion or Java that I don't want it to prevent the connection to the secure site.
ColdFusion 8 Enterprise, installed on a Solaris server, with Java JDK 1.6.0_12 (only version that works with Verity in this environment).
---Edit#2: The question is apparently very unclear. Sorry. Is it possible to temporarily disable the need for a cert to be installed for the request to be made to a secure URL? Pseudocode:
- Turn off ColdFusion (or Java) cert checking
- Make CFHTTP request to secure site (ex.
<cfhttp url="https://www.facebook.com/feeds/page.php?format=rss20&id=12341234123412" method="get" /> - Turn on ColdFusion cert checking for future requests
I hope this helps. Sorry for the confusion.
回答1:
You need to update your JVM to a newer version with updated root certificates as the SSL certificate that Facebook is using is more than likely based on a newer root certificate and your system is not recognising it. I would suggest you try JRE 1.6.0_45:
http://www.oracle.com/technetwork/java/javasebusiness/downloads/java-archive-downloads-javase6-419409.html#jre-6u45-oth-JPR
Also, it is not recommended using the JDK in a production environment, you should be using the server JRE.
来源:https://stackoverflow.com/questions/25667748/cfhttp-issue-with-ssl-turn-off-security-on-cfhttp